RFR: JDK-8296631 NSS tests failing on OL9 linux-aarch64 hosts
Valerie Peng
valeriep at openjdk.org
Sat Sep 23 00:02:10 UTC 2023
On Thu, 21 Sep 2023 00:31:37 GMT, Mark Powers <mpowers at openjdk.org> wrote:
> Without updating `Secmod/cert9.db` and `Secmod/key4.db`, both `Secmod/JksSetPrivateKey` and `Secmod/GetPrivateKey` will fail. The old values must have been incorrect. This was not noticed because `cert8.db` and `key3.db` were used if there were a `libnssdbm3` on the machine. In OL9, there is no `libnssdbm3`, so the failures appeared.
>
> Regarding your second question, every `cert8/key3` pair has a `cert9/key4` pair except for `pkcs11/tls` tests which only have `cert8/key3`.
Thanks for the explanation~
Then what happens to the `pkcs11/tls/tls12` test which does not have cert9.db/key4.db? Will they continue to work against newer NSS releases with default sqlite=true?
-------------
PR Comment: https://git.openjdk.org/jdk/pull/15644#issuecomment-1732135896
More information about the security-dev
mailing list